CLAIMS 



1 . A method for authenticating a first user in a protected network to an application shared 
simultaneously with a second user in an unprotected network, said method comprising the steps 
of: 

the first user supplying a userlD and a password to a first server within said protected 
network for authentication for said application, said application residing in a third network; 

said first server checking authentication of said first user based on said userlD and 
password, and if said first user is authentic, said first server forwarding to said application an 
authentication key for said first user and a selection by said first user pertaining to said 
application; and 

said application checking authentication of said key, and if authentic, complying with said 
selection by said first user. 

2. A method as set forth in claim 1 further comprising the steps of: 

said second user supplying another userlD and another password to said application; 

if said other userlD and other password are authentic, said application complying with a 
selection made by said second user pertaining to said application. 

3. A method as set forth in claim 1 wherein said protected network and said third network 
are both controlled by a same entity. 

4. A method as set forth in claim 1 wherein said third network is a DMZ. 
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5. A method as set forth in claim 1 wherein said unprotected network is an Internet. 

6. A method as set forth in claim 3 wherein said unprotected network is an Internet. 

7. A method as set forth in claim 4 wherein said unprotected network is an Internet. 

8. A method as set forth in claim 1 wherein said protected network is an intranet. 

9. A method as set forth in claim 3 wherein said protected network is an intranet. 

1 0. A method as set forth in claim 4 wherein said protected network is an intranet. 

11. A method as set forth in claim 1 wherein said application is an electronic meeting 
application, and both said first user and said second user simultaneously participate in a same 
meeting. 

12. A method as set forth in claim 1 1 wherein said selection by said first user is a selection of 
an electronic meeting in which to participate. 

13. A method as set forth in claim 1 further comprising the step of said application sending to 
said first server said authentication key before the step of said first server forwarding to said 
application said authentication key. 

14. A method as set forth in claim 1 wherein said authentication key is self authenticating 
based on whether a period during which the key is valid matches a scheduled period of use of 
said application, and whether an IP address of said first user is from said protected network. 

15. A method as set forth in claim 1 further comprising the step of authenticating said second 
user to said application. 
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1 6. A authentication system comprising: 

an application on a first server in a first network; 

a second server in a second, protected network to receive from a first user within said 
second network a userlD and a password for authentication for said application, said second 
server checking authentication of said first user based on said userlD and password, and if said 
first user is authentic, said second server forwarding to said application an authentication key for 
said first user and a selection by said first user pertaining to said application; and 

said application checking authentication of said key, and if authentic, complying with said 
selection by said first user; and 

a workstation in a third, unprotected network for a second user, said application being 
shared simultaneously with said first and second users. 

17. A system as set forth in claim 16 wherein: 

said application receives from said second user another userlD and another password, and 
if said other userlD and other password are authentic, said application complies with a 
selection made by said second user pertaining to said application. 

18. A system as set forth in claim 16 wherein said first and second servers and said first and 
second networks are all controlled by a same entity. 

19. A system as set forth in claim 16 wherein said first network is a DMZ. 



20. A system as set forth in claim 16 wherein said unprotected network is an Internet. 
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21 . A computer program product for authenticating a first user in a protected network to an 
application shared simultaneously with a second user in an unprotected network, said program 
product comprising: 

a computer readable medium; 

first program instructions, to execute on a first server within said protected network, to 
receive from the first user a userlD and a password for authentication for said application, said 
application residing in a third network; 

second program instructions, to execute on said first server, to check authentication of 
said first user based on said userlD and password, and if said first user is authentic, to forward to 
said application an authentication key for said first user and a selection by said first user 
pertaining to said application; and 

third program instructions in said application to check authentication of said key, and if 
authentic, comply with said selection by said first user; and wherein 

said first, second and third program instructions are recorded on said medium. 

22. A computer program product as set forth in claim 21 further comprising: 

fourth program instructions in said application to receive from said second user another 
userlD and another password, and if said other userlD and other password are authentic, to 
instruct said application to comply with a selection made by said second user pertaining to said 
application; and wherein said fourth program instructions are recorded on said medium. 
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